Re: SGX vs LSM (Re: [PATCH v20 00/28] Intel SGX1 support)

From: Jarkko Sakkinen
Date: Mon Jun 03 2019 - 18:09:38 EST

Next message: Johannes Weiner: "[PATCH 10/11] mm: vmscan: detect file thrashing at the reclaim root"
Previous message: Jacob Pan: "Re: [PATCH v2 2/4] iommu: Introduce device fault data"
In reply to: Jarkko Sakkinen: "Re: SGX vs LSM (Re: [PATCH v20 00/28] Intel SGX1 support)"
Next in thread: Jarkko Sakkinen: "Re: SGX vs LSM (Re: [PATCH v20 00/28] Intel SGX1 support)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, May 30, 2019 at 11:04:24AM -0400, Stephen Smalley wrote:
> Does this occur for both setting initial permissions and runtime permissions
> or just runtime? Both userspace- and driver-initiated mmap/mprotect
> operations or just userspace-initiated ones? Does the driver use interfaces
> that call the mmap/mprotect hooks or lower level functions?

The driver never initiates mmap() or mprotect().

/Jarkko

Next message: Johannes Weiner: "[PATCH 10/11] mm: vmscan: detect file thrashing at the reclaim root"
Previous message: Jacob Pan: "Re: [PATCH v2 2/4] iommu: Introduce device fault data"
In reply to: Jarkko Sakkinen: "Re: SGX vs LSM (Re: [PATCH v20 00/28] Intel SGX1 support)"
Next in thread: Jarkko Sakkinen: "Re: SGX vs LSM (Re: [PATCH v20 00/28] Intel SGX1 support)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]